Slashdot Mirror

← Back to Stories (view on slashdot.org)

D-Link Routers Vulnerable To DNS Hijacking

Posted by samzenpus on from the protect-ya-neck dept.

An anonymous reader writes At least one and likely more D-Link routers as well as those of other manufacturers using the same firmware are vulnerable to remote changing of DNS settings and, effectively, traffic hijacking, a Bulgarian security researcher has discovered. Todor Donev, a member of the Ethical Hacker research team, says that the vulnerability is found in the ZynOS firmware of the device, D-Link's DSL-2740R ADSL modem/wireless router. The firmware in question is implemented in many networking equipment manufactured by D-Link, TP-Link Technologies and ZTE.

2 of 64 comments (clear)

  1. Why leave remote administration on? by ciscoguy01 · · Score: 5, Insightful

    Why leave remote administration on?
    I would avoid opening the web UI of any home router on the WAN side.
    It's mostly unnecessary and a needless security exposure.

    --
    .
  2. Re:Every day by FatdogHaiku · · Score: 5, Funny

    When a binary and an analog love each other, that's all that matters.
    How they compile in the privacy of their home is no ones business.
    And soon you may hear the pitter patter of little dependencies...

    --
    You have the right to remain sentient. If you give up the right to remain sentient, you will be elected to public office